REFERENCE LINKS:

IMPACT ASSESSMENT:

High

DISCUSSION:

The vulnerability is caused due to a boundary error in when handling font names and can be exploited to cause a stack-based buffer overflow via a specially crafted WPS file with an overly long font name.